Hey, guys. Let me apologize in forward for this being a long post, but since this never happened to me before I just want to make sure I give you all the details to find out how this happened and help secure my account even more.
Recently I've received this message informing me that my account had a sign-in attempt blocked. Of course, this wasn't me since I've gotten this message both on my phone and my Gmail at 05:00 AM while I was sleeping so it leads me to believe that there was some hacking attempt and not some auto-login mistake some website or device I use made.
I live in Europe and the sign-in attempt was from the United States as seen in the picture below:
Now I have gone through all the Security Checkup steps from the link provided by Google in the first picture (assuming email@example.com
om was from Google and not some phishing attempt) , and I have also scanned my computer for any malware using both Microsoft Security Essentials and Malwarebytes Anti-Malware (separately, not at the same time) and nothing was found, so I assume I'm safe.
I never give my passwords of any account to anyone and I'm extremely careful about what sites I use and where I log in with my Gmail account, so I honestly don't know how this happened. Any files I download I either download from a trustworthy source (Java, Microsoft, Google, etc...) or scan immediately with my antivirus programs to make sure it's safe to open.
I only have one suspicion as to what might cause this, and that is the recent Meltdown/Spectre vulnerability.
I have an Intel i5 2500K (2nd-Gen, Sandy Bridge) and a Windows 7 Ultimate x64 with the vulnerability patches/updates disabled. Now I know that I shouldn't have done that and that I'm exposing my PC to the vulnerability, the reason I did that is because those updates cause severe performance issues in video games, which is what majority of my time I'm doing on my PC.
Last question before closing:
When someone tries to access your account like this, do they actually get blocked and unable to change to change the password and use the account for any means? I'm asking this because my account is connected to my bank account and Paypal and other contact emails, so I'm wondering if those accounts as well are in jeopardy.
I've also removed any account access from unnecessary apps and websites in Manage Apps
This will be all, I hope someone will be able to help me figure this out. Once again I apologize for the long post.
Thanks in forward.